Cyber Security & Centralised Services Manager Location: London Bridge Company: Managed Service Provider (MSP) This role will be office-based for the first 3 6 months, with the option to move to a hybrid working arrangement thereafter. Our client is a well-established MSP based in London Bridge. They are a close-knit team of 30 IT professionals delivering end-to-end technology services and support to a diverse range of clients, with a strong emphasis on cybersecurity, resilience and regulatory compliance. The Opportunity: We are seeking an experienced Cyber Security & Centralised Services Managerwith a strong cybersecurity focus to join our growing technical team. In this pivotal role, you will: Act as the primary escalation point for complex IT and cybersecurity incidents. Manage and secure core client infrastructure and cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Key Responsibilities Cyber Security & Centralised Services Manager: Serve as the primary escalation point for complex IT and cybersecurity incidents, including malware infections, ransomware attacks, phishing attempts, and unauthorised access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services, endpoints, and networks, in alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation workflows, ensuring systems remain secure by design. Maintain and improve Standard Operating Procedures (SOPs) for security operations, ensuring knowledge is shared across the team for rapid incident handling. Provide mentorship and cybersecurity guidance to junior engineers and Service Desk staff, fostering a culture of security awareness and proactive threat management. Perform ongoing threat intelligence monitoring and security trend analysis to anticipate risks and protect client environments. Support clients in security reporting, compliance reviews, and continuous improvement initiatives, helping them meet regulatory and industry security standards. Cyber Security & Centralised Services Manager Key Skills & Experience: Proven experience in a 3rd Line / Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud security architectures. Hands-on experience with endpoint protection, EDR/MDR/XDR platforms, email security, RMM tools, and centralised monitoring systems. Familiarity with security frameworks and compliance standards, including Cyber Essentials, Cyber Essentials Plus, ISO27001, NIST, and GDPR requirements. Skilled in vulnerability management, threat detection, incident response, and remediation planning, including experience with ransomware and phishing mitigation. Strong communication skills with the ability to present technical and security findings to non-technical stakeholders and clients. Proactive mindset in threat hunting, risk assessments and continuous improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator / Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part of a technically strong, supportive and collaborative security-conscious team in central London. Play a key role in strategic security projects, incident response and continuous improvement initiatives. Access ongoing training, certifications and professional development in cybersecurity. Join a company that holds the core values of Honesty, Accountability, Commitment, Innovation, Expertise and Collaboration
09/12/2025
Full time
Cyber Security & Centralised Services Manager Location: London Bridge Company: Managed Service Provider (MSP) This role will be office-based for the first 3 6 months, with the option to move to a hybrid working arrangement thereafter. Our client is a well-established MSP based in London Bridge. They are a close-knit team of 30 IT professionals delivering end-to-end technology services and support to a diverse range of clients, with a strong emphasis on cybersecurity, resilience and regulatory compliance. The Opportunity: We are seeking an experienced Cyber Security & Centralised Services Managerwith a strong cybersecurity focus to join our growing technical team. In this pivotal role, you will: Act as the primary escalation point for complex IT and cybersecurity incidents. Manage and secure core client infrastructure and cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Key Responsibilities Cyber Security & Centralised Services Manager: Serve as the primary escalation point for complex IT and cybersecurity incidents, including malware infections, ransomware attacks, phishing attempts, and unauthorised access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services, endpoints, and networks, in alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation workflows, ensuring systems remain secure by design. Maintain and improve Standard Operating Procedures (SOPs) for security operations, ensuring knowledge is shared across the team for rapid incident handling. Provide mentorship and cybersecurity guidance to junior engineers and Service Desk staff, fostering a culture of security awareness and proactive threat management. Perform ongoing threat intelligence monitoring and security trend analysis to anticipate risks and protect client environments. Support clients in security reporting, compliance reviews, and continuous improvement initiatives, helping them meet regulatory and industry security standards. Cyber Security & Centralised Services Manager Key Skills & Experience: Proven experience in a 3rd Line / Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud security architectures. Hands-on experience with endpoint protection, EDR/MDR/XDR platforms, email security, RMM tools, and centralised monitoring systems. Familiarity with security frameworks and compliance standards, including Cyber Essentials, Cyber Essentials Plus, ISO27001, NIST, and GDPR requirements. Skilled in vulnerability management, threat detection, incident response, and remediation planning, including experience with ransomware and phishing mitigation. Strong communication skills with the ability to present technical and security findings to non-technical stakeholders and clients. Proactive mindset in threat hunting, risk assessments and continuous improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator / Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part of a technically strong, supportive and collaborative security-conscious team in central London. Play a key role in strategic security projects, incident response and continuous improvement initiatives. Access ongoing training, certifications and professional development in cybersecurity. Join a company that holds the core values of Honesty, Accountability, Commitment, Innovation, Expertise and Collaboration
IT Project Engineer - Exciting New Role with a Leading MSP Are you a skilled 2nd/3rd Line Engineer with hands-on project experience, ready to take the next step into a dedicated IT Project role ? Do you want to work with a fast-growing MSP, delivering complex technical projects for a diverse client base, whilst expanding your skills across enterprise-level tech? This is a brand-new opportunity to join a supportive, close-knit team, working on high-value IT projects that make a real impact for 400+ businesses across the UK. Location: Redhill Salary: £40,000 - £50,000 (DOE) Benefits: Company laptop & equipment, performance-based bonus, 22 days holiday (rising to 25 with service), Ongoing training & development support, regular team socials and a supportive working culture The Role As an IT Project Engineer, you will take ownership of the planning, delivery, and implementation of a wide variety of technical projects. You'll work closely with the wider engineering team, helping scope requirements, configure solutions, and ensure smooth deployment to client environments. You'll be trusted to deliver across Microsoft, networking, virtualisation, and security technologies, providing technical expertise while maintaining excellent client communication. This is a role for someone with proven 2nd or 3rd Line experience, who has already been involved in project delivery and is looking to step fully into a project-focused position. Your Day-to-Day: Deliver and implement technical projects for SME clients, both remotely and on-site Work closely with project managers and senior engineers to scope and plan solutions Configure and deploy servers, networking, virtual desktops, and security solutions Provide escalated technical input during project phases, ensuring successful delivery Assist with client onboarding and infrastructure upgrades Document all project work and hand over smoothly to support teams Act as a trusted technical advisor, ensuring clients understand solutions and best practices Tech You Will Work With: OS & Servers: Windows Server, Active Directory, Azure AD, Hyper-V, VMware Cloud & Virtualisation: Microsoft 365, Citrix, RDS Networking: Firewalls, switches, routers (e.g., Fortinet, Cisco, Sophos) Backups & DR: Veeam, off-site disaster recovery solutions Monitoring & Security: MSP-standard monitoring tools, patching & endpoint protection What You Bring: At least 2 years' experience delivering IT projects in an MSP or fast-paced IT environment Strong technical grounding at 2nd/3rd Line level across Microsoft, networking & infrastructure Proven experience in scoping, configuring, and implementing technical solutions Excellent problem-solving and communication skills Customer-first approach, with the ability to explain technical solutions in plain English A full UK driving licence and access to a vehicle (essential due to client site visits) For your information: Interested? Please send your CV in as a Word format only Please only apply if you are already eligible to work in the UK (indefinitely & without sponsorship) Not for you but you know someone suitable? Take advantage of the YourRecruit paid referral fee Due to the large numbers of responses we receive, despite our best efforts it is not possible to respond to every application. Therefore, only short-listed candidates will be contacted for this particular role and if you haven't heard from us within 7 days please assume you have been unsuccessful on this occasion. Please feel free however to apply for further roles and we will certainly keep your details on file and contact you with suitable vacancies. YourRecruit Ltd does not discriminate on the grounds of age, race, gender or disability and complies with all relevant UK legislation. To stay safe in your job search we recommend that you visit JobsAware, a non-profit, joint industry and law enforcement organisation working to combat job scams. Visit the JobsAware website for information on common scams and to get free, expert advice for a safer job search.
03/10/2025
Full time
IT Project Engineer - Exciting New Role with a Leading MSP Are you a skilled 2nd/3rd Line Engineer with hands-on project experience, ready to take the next step into a dedicated IT Project role ? Do you want to work with a fast-growing MSP, delivering complex technical projects for a diverse client base, whilst expanding your skills across enterprise-level tech? This is a brand-new opportunity to join a supportive, close-knit team, working on high-value IT projects that make a real impact for 400+ businesses across the UK. Location: Redhill Salary: £40,000 - £50,000 (DOE) Benefits: Company laptop & equipment, performance-based bonus, 22 days holiday (rising to 25 with service), Ongoing training & development support, regular team socials and a supportive working culture The Role As an IT Project Engineer, you will take ownership of the planning, delivery, and implementation of a wide variety of technical projects. You'll work closely with the wider engineering team, helping scope requirements, configure solutions, and ensure smooth deployment to client environments. You'll be trusted to deliver across Microsoft, networking, virtualisation, and security technologies, providing technical expertise while maintaining excellent client communication. This is a role for someone with proven 2nd or 3rd Line experience, who has already been involved in project delivery and is looking to step fully into a project-focused position. Your Day-to-Day: Deliver and implement technical projects for SME clients, both remotely and on-site Work closely with project managers and senior engineers to scope and plan solutions Configure and deploy servers, networking, virtual desktops, and security solutions Provide escalated technical input during project phases, ensuring successful delivery Assist with client onboarding and infrastructure upgrades Document all project work and hand over smoothly to support teams Act as a trusted technical advisor, ensuring clients understand solutions and best practices Tech You Will Work With: OS & Servers: Windows Server, Active Directory, Azure AD, Hyper-V, VMware Cloud & Virtualisation: Microsoft 365, Citrix, RDS Networking: Firewalls, switches, routers (e.g., Fortinet, Cisco, Sophos) Backups & DR: Veeam, off-site disaster recovery solutions Monitoring & Security: MSP-standard monitoring tools, patching & endpoint protection What You Bring: At least 2 years' experience delivering IT projects in an MSP or fast-paced IT environment Strong technical grounding at 2nd/3rd Line level across Microsoft, networking & infrastructure Proven experience in scoping, configuring, and implementing technical solutions Excellent problem-solving and communication skills Customer-first approach, with the ability to explain technical solutions in plain English A full UK driving licence and access to a vehicle (essential due to client site visits) For your information: Interested? Please send your CV in as a Word format only Please only apply if you are already eligible to work in the UK (indefinitely & without sponsorship) Not for you but you know someone suitable? Take advantage of the YourRecruit paid referral fee Due to the large numbers of responses we receive, despite our best efforts it is not possible to respond to every application. Therefore, only short-listed candidates will be contacted for this particular role and if you haven't heard from us within 7 days please assume you have been unsuccessful on this occasion. Please feel free however to apply for further roles and we will certainly keep your details on file and contact you with suitable vacancies. YourRecruit Ltd does not discriminate on the grounds of age, race, gender or disability and complies with all relevant UK legislation. To stay safe in your job search we recommend that you visit JobsAware, a non-profit, joint industry and law enforcement organisation working to combat job scams. Visit the JobsAware website for information on common scams and to get free, expert advice for a safer job search.
Bilfinger UK is a leading engineering and maintenance provider, supporting customers across the chemical & petrochemical, nuclear, oil & gas, pharmaceuticals & biopharma, power & energy, utilities, renewables and food & beverage markets. We enhance the efficiency of assets, ensuring a high level of availability and reducing maintenance costs. We have extensive experience in offshore and onshore facilities; specialising in asset management services throughout all life cycle phases from consulting, engineering, manufacturing, assembly, operations, maintenance, and decommissioning. This commitment is delivered by an experienced and highly competent workforce of over 4,500 employees operating from 14 offices in strategic industrial hubs, upholding the highest standards of safety, compliance and quality. Role: As part of our continued growth in OT Cyber Security, we are looking for an experienced, committed and enthusiastic Principal OT Cyber Security Engineer to join our Automation team. The Principal OT Cyber Security Engineer will: Lead OT cyber security project lifecycle activities to deliver secure by design Industrial Automation and Control Systems Be responsible for developing and supporting the growth of our OT cyber security consultancy services Manage continuous improvement of Bilfinger UK's OT Cyber Security Management System (CSMS) The Principal OT Cyber Security Engineer will take full responsibility for the successful delivery of cyber security projects (technical, quality, time and cost elements). The ideal candidate will demonstrate a growth mindset, bring innovative and bleeding edge solutions to address complex challenges and have the ability to develop new ideas, processes and systems in an evolving OT cyber security landscape. Key Activities: Working co-operatively with the OT Cyber Security Manager, Technical Managers, Project Managers and engineering teams across a variety of Automation projects you will: Lead OT cyber security project lifecycle activities to deliver secure by design IACS: Facilitate and conduct ISA-62443-3-2 based cyber security risk assessments to define risk based OT cyber security requirements Create defence in depth, segmented system architectures Develop secure by design IACS to meet client requirements including documenting OT cyber security requirements and specifications Implement OT cyber security controls and countermeasures including: Hardening of BIOS/UEFI, virtual environments and operating systems to recognised industry standards, guidelines and best practices Network security including segmentation and boundary protection through managed switches, firewalls and remote access solutions e.g. Stratix, Fortinet etc. Cyber security applications for industrial control system environments: Host Intrusion Detection (HIDS) Malware detection and protection i.e. Endpoint Detection and Response (EDR) Network Intrusion Detection (IDS) Network monitoring Security Information and Event Management (SIEM) Support Project Managers with the planning and execution of OT cyber security aspects of projects to ensure they meet the time, cost and quality required by our clients Responsible for developing and supporting the growth of our OT cyber security consultancy services by: Evaluating new OT cyber security consultancy offerings and establishing our approach Conducting OT cyber security gap assessments of procedural and technological controls against relevant frameworks and standards e.g. National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF), ISA / IEC 62443 suite, OG86 etc. Carrying out a wide variety of site and desktop based vulnerability assessments on clients brown field IACS Support clients in the creation and development of their own CSMS artefacts including policies, procedures, guidelines, specification and work instructions etc. Manage continuous improvement of Bilfinger UK's OT Cyber Security Management System Support further development of cyber security documentation including policies, procedures and specifications Grow out OT cyber security partner ecosystem Ensure policies, procedures and specifications are being followed on projects by providing OT cyber security technical supervision and quality assurance through project surveillance e.g. design review, informal audits etc. Promote and maintain high level of security hygiene within Bilfinger UK Automation department Promote and facilitate OT cyber security knowledge sharing and learning from experience through, for example, internal training, lunch and learns, standardisation, best practices etc. Attend and represent Bilfinger UK at industry OT cyber security groups and events Contribute to the continuous professional development of the team by providing technical leadership and mentoring of junior engineers Support Business Development team on opportunities including at client meetings, presentations/demonstrations, solutions optioneering etc. Support Proposals team on technical solutions optioneering, bid production and technically reviewing bids Help develop and foster relationships and partnerships with control system OEM/vendor OT cyber security teams and OT cyber security solution providers Provide health and safety leadership by example Skills & Experience: At least 5 years of practical engineering experience in the application of OT cyber security to PLC, DCS, RTU, SCADA and HMI systems in at least one of Bilfinger UK's key sectors. Experience of the design, specification, implementation, testing and commissioning of security solutions, controls and countermeasures for OT/IACS environments. This should include: Hardening of BIOS/UEFI, virtual environments and operating systems to recognised industry standards, guidelines and best practices Network security including segmentation and boundary protection through managed switches, firewalls and remote access solutions e.g. Stratix, Fortinet etc. Cyber security applications for industrial control system environments: Host Intrusion Detection (HIDS) Malware detection and protection i.e. Endpoint Detection and Response (EDR) Network Intrusion Detection (IDS) Network monitoring Security Information and Event Management (SIEM) Practitioner of the ISA/IEC 62443 suite of standards, with particular focus on -2-1, 2-4, 3-2 and 3-3. Experience working in or for System Integrator, Operators of Essential Services (OES) or Critical National Infrastructure (CNI) organisations Broad technical knowledge of a variety of control system Original Equipment Manufacturers (OEMs) e.g. AVEVA, Rockwell Automation, Siemens, Schneider etc. Experience of industrial networking protocols e.g. CIP, DNP3, Modbus, PROFINET, IEC 61850, PRP, REP Experience of working within and supporting the continuous improvement of a Quality Management System (QMS) Qualifications: A degree or HND/HNC in Electronic/Electrical Engineering, Computer Science or other relevant engineering discipline Professionally registered engineer or working towards professional registration Relevant OT cyber security certification e.g.: ISA/IEC 62443 Cyber Security Expert Global Information Assurance Certification (GIAC) Global Industrial Cyber Security Professional Certification (GISCP) If you wish to speak to a member of the recruitment team, please contact . Bilfinger UK Limited Engineering Permanent Professional Bilfinger Engineering
01/09/2025
Full time
Bilfinger UK is a leading engineering and maintenance provider, supporting customers across the chemical & petrochemical, nuclear, oil & gas, pharmaceuticals & biopharma, power & energy, utilities, renewables and food & beverage markets. We enhance the efficiency of assets, ensuring a high level of availability and reducing maintenance costs. We have extensive experience in offshore and onshore facilities; specialising in asset management services throughout all life cycle phases from consulting, engineering, manufacturing, assembly, operations, maintenance, and decommissioning. This commitment is delivered by an experienced and highly competent workforce of over 4,500 employees operating from 14 offices in strategic industrial hubs, upholding the highest standards of safety, compliance and quality. Role: As part of our continued growth in OT Cyber Security, we are looking for an experienced, committed and enthusiastic Principal OT Cyber Security Engineer to join our Automation team. The Principal OT Cyber Security Engineer will: Lead OT cyber security project lifecycle activities to deliver secure by design Industrial Automation and Control Systems Be responsible for developing and supporting the growth of our OT cyber security consultancy services Manage continuous improvement of Bilfinger UK's OT Cyber Security Management System (CSMS) The Principal OT Cyber Security Engineer will take full responsibility for the successful delivery of cyber security projects (technical, quality, time and cost elements). The ideal candidate will demonstrate a growth mindset, bring innovative and bleeding edge solutions to address complex challenges and have the ability to develop new ideas, processes and systems in an evolving OT cyber security landscape. Key Activities: Working co-operatively with the OT Cyber Security Manager, Technical Managers, Project Managers and engineering teams across a variety of Automation projects you will: Lead OT cyber security project lifecycle activities to deliver secure by design IACS: Facilitate and conduct ISA-62443-3-2 based cyber security risk assessments to define risk based OT cyber security requirements Create defence in depth, segmented system architectures Develop secure by design IACS to meet client requirements including documenting OT cyber security requirements and specifications Implement OT cyber security controls and countermeasures including: Hardening of BIOS/UEFI, virtual environments and operating systems to recognised industry standards, guidelines and best practices Network security including segmentation and boundary protection through managed switches, firewalls and remote access solutions e.g. Stratix, Fortinet etc. Cyber security applications for industrial control system environments: Host Intrusion Detection (HIDS) Malware detection and protection i.e. Endpoint Detection and Response (EDR) Network Intrusion Detection (IDS) Network monitoring Security Information and Event Management (SIEM) Support Project Managers with the planning and execution of OT cyber security aspects of projects to ensure they meet the time, cost and quality required by our clients Responsible for developing and supporting the growth of our OT cyber security consultancy services by: Evaluating new OT cyber security consultancy offerings and establishing our approach Conducting OT cyber security gap assessments of procedural and technological controls against relevant frameworks and standards e.g. National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF), ISA / IEC 62443 suite, OG86 etc. Carrying out a wide variety of site and desktop based vulnerability assessments on clients brown field IACS Support clients in the creation and development of their own CSMS artefacts including policies, procedures, guidelines, specification and work instructions etc. Manage continuous improvement of Bilfinger UK's OT Cyber Security Management System Support further development of cyber security documentation including policies, procedures and specifications Grow out OT cyber security partner ecosystem Ensure policies, procedures and specifications are being followed on projects by providing OT cyber security technical supervision and quality assurance through project surveillance e.g. design review, informal audits etc. Promote and maintain high level of security hygiene within Bilfinger UK Automation department Promote and facilitate OT cyber security knowledge sharing and learning from experience through, for example, internal training, lunch and learns, standardisation, best practices etc. Attend and represent Bilfinger UK at industry OT cyber security groups and events Contribute to the continuous professional development of the team by providing technical leadership and mentoring of junior engineers Support Business Development team on opportunities including at client meetings, presentations/demonstrations, solutions optioneering etc. Support Proposals team on technical solutions optioneering, bid production and technically reviewing bids Help develop and foster relationships and partnerships with control system OEM/vendor OT cyber security teams and OT cyber security solution providers Provide health and safety leadership by example Skills & Experience: At least 5 years of practical engineering experience in the application of OT cyber security to PLC, DCS, RTU, SCADA and HMI systems in at least one of Bilfinger UK's key sectors. Experience of the design, specification, implementation, testing and commissioning of security solutions, controls and countermeasures for OT/IACS environments. This should include: Hardening of BIOS/UEFI, virtual environments and operating systems to recognised industry standards, guidelines and best practices Network security including segmentation and boundary protection through managed switches, firewalls and remote access solutions e.g. Stratix, Fortinet etc. Cyber security applications for industrial control system environments: Host Intrusion Detection (HIDS) Malware detection and protection i.e. Endpoint Detection and Response (EDR) Network Intrusion Detection (IDS) Network monitoring Security Information and Event Management (SIEM) Practitioner of the ISA/IEC 62443 suite of standards, with particular focus on -2-1, 2-4, 3-2 and 3-3. Experience working in or for System Integrator, Operators of Essential Services (OES) or Critical National Infrastructure (CNI) organisations Broad technical knowledge of a variety of control system Original Equipment Manufacturers (OEMs) e.g. AVEVA, Rockwell Automation, Siemens, Schneider etc. Experience of industrial networking protocols e.g. CIP, DNP3, Modbus, PROFINET, IEC 61850, PRP, REP Experience of working within and supporting the continuous improvement of a Quality Management System (QMS) Qualifications: A degree or HND/HNC in Electronic/Electrical Engineering, Computer Science or other relevant engineering discipline Professionally registered engineer or working towards professional registration Relevant OT cyber security certification e.g.: ISA/IEC 62443 Cyber Security Expert Global Information Assurance Certification (GIAC) Global Industrial Cyber Security Professional Certification (GISCP) If you wish to speak to a member of the recruitment team, please contact . Bilfinger UK Limited Engineering Permanent Professional Bilfinger Engineering
Job Specification: IP Design Specialist - Designer Role Title: IP Design Specialist - Designer Location: Hybrid- Reading Role Overview The IP Design Specialist (Designer) will be responsible for delivering high-quality IP/MPLS network designs supporting a variety of infrastructure and customer solutions, including fixed-line and mobile services, private and hybrid cloud, enterprise IT, and wireless networks. The individual will lead the low-level design and implementation planning of medium to large-scale projects, ensuring solutions are robust, scalable, and aligned to architectural guidelines. Key Responsibilities Produce detailed, technically sound designs across LAN/WAN, SP/MPLS, Cloud Network infrastructure, and Data Centre environments. Take ownership of LLDs (Low-Level Designs) based on high-level architecture, ensuring compliance with standards and operational requirements. Collaborate with cross-functional engineering and implementation teams to ensure successful delivery and operational handover. Act as a Subject Matter Expert (SME) across IP, routing, switching, and network virtualization domains. Conduct peer reviews and provide technical oversight to junior engineers/designers. Engage in design validation, lab testing, and proof-of-concept activities. Troubleshoot and support network designs through deployment and into steady-state operations. Participate in design governance and approval forums. Essential Skills & Qualifications Extensive experience in Service Provider and Data Centre routing/switching. Proficiency in BGP, MPLS, ISIS, OSPF, QoS, and large-scale WAN/LAN design. Deep understanding of Cisco, Juniper, Fortinet, F5 product lines. Strong experience with on-prem and hybrid cloud networking (OpenStack/OpenShift/VMware NSX). Experience in network automation or Scripting tools (eg Ansible, Python) is a strong plus. Working knowledge of network telemetry and management protocols (SNMP, Syslog, TACACS+). Hands-on experience with complex network troubleshooting tools and techniques. Desirable Certifications CCIE/JNCIE/SRA or equivalent experience. Cloud or Automation certifications (AWS Networking, Terraform, DevNet, etc.) advantageous. Key Attributes Delivery-focused, technically curious, and highly motivated. Excellent communication and documentation skills. Ability to manage multiple projects in parallel with minimal supervision. Willingness to occasionally work outside standard hours for deployments or incident response.
28/08/2025
Contractor
Job Specification: IP Design Specialist - Designer Role Title: IP Design Specialist - Designer Location: Hybrid- Reading Role Overview The IP Design Specialist (Designer) will be responsible for delivering high-quality IP/MPLS network designs supporting a variety of infrastructure and customer solutions, including fixed-line and mobile services, private and hybrid cloud, enterprise IT, and wireless networks. The individual will lead the low-level design and implementation planning of medium to large-scale projects, ensuring solutions are robust, scalable, and aligned to architectural guidelines. Key Responsibilities Produce detailed, technically sound designs across LAN/WAN, SP/MPLS, Cloud Network infrastructure, and Data Centre environments. Take ownership of LLDs (Low-Level Designs) based on high-level architecture, ensuring compliance with standards and operational requirements. Collaborate with cross-functional engineering and implementation teams to ensure successful delivery and operational handover. Act as a Subject Matter Expert (SME) across IP, routing, switching, and network virtualization domains. Conduct peer reviews and provide technical oversight to junior engineers/designers. Engage in design validation, lab testing, and proof-of-concept activities. Troubleshoot and support network designs through deployment and into steady-state operations. Participate in design governance and approval forums. Essential Skills & Qualifications Extensive experience in Service Provider and Data Centre routing/switching. Proficiency in BGP, MPLS, ISIS, OSPF, QoS, and large-scale WAN/LAN design. Deep understanding of Cisco, Juniper, Fortinet, F5 product lines. Strong experience with on-prem and hybrid cloud networking (OpenStack/OpenShift/VMware NSX). Experience in network automation or Scripting tools (eg Ansible, Python) is a strong plus. Working knowledge of network telemetry and management protocols (SNMP, Syslog, TACACS+). Hands-on experience with complex network troubleshooting tools and techniques. Desirable Certifications CCIE/JNCIE/SRA or equivalent experience. Cloud or Automation certifications (AWS Networking, Terraform, DevNet, etc.) advantageous. Key Attributes Delivery-focused, technically curious, and highly motivated. Excellent communication and documentation skills. Ability to manage multiple projects in parallel with minimal supervision. Willingness to occasionally work outside standard hours for deployments or incident response.
Network Engineer – Retail Telephony / SD-WAN Project Duration: 16–20 weeks (target start week commencing 23 June 2025)
We are looking for a Network Engineer to support one of our projects kicking off imminently to install new headsets in our store estate. The role required needs to cover the below:
Good Knowledge of Networks, TCP/IP, DNS, DHCP, QOS.
A good understanding of Firewalls.
Knowledge of SIP, RTP, VOIP Protocols and Telephony concepts.
Experience interrogating switches (Netgear)
Experience with Network Management Portals (Fortinet) or other, training can be provided
Comfortable working in a Network Environment that is in Mid Migration and able to understand both.
Knowledge of Cisco and Allied Telesis technologies, SDWAN etc Good Verbal & Communication skillsLocation: South Manchester (Hybrid – 2-3 days on-site, remainder remote)
Engagement: Day-rate contract; outside IR35 expected but final status TBC
Background - Our client is rolling out a cloud-hosted telephony solution headsets across 400 + sites this summer.
You’ll be the network SME who keeps every cut-over running smoothly while the in-house teams focus on a parallel SD-WAN migration from a legacy Claranet estate.
When installs are quiet you’ll support the SD-WAN project work.
What you’ll do
Provide remote Tier-3 support to field engineers installing the headset solution into sites; perform switch-port checks, packet traces and firewall rule reviews in real time.
Tune network services (TCP/IP, DNS, DHCP, QoS) to guarantee SIP/RTP voice quality.
Administer and interrogate Netgear switches plus Fortinet (or similar) management portals; document standard configs for 400+ sites
Troubleshoot across mixed environments (legacy MPLS & new SD-WAN); liaise with third-party NOCs.
Feed concise status updates into the project manager and wider delivery team; act on your own initiative when answers aren’t immediately at hand.Core Skill Detail
Networking fundamentals
Deep knowledge of Layer 2/3, TCP/IP, DNS, DHCP, QoSVoice & telephonySIP, RTP, VoIP concepts; real-time traffic optimisationSecurity
Working understanding of firewalls and rule-set troubleshootingSwitching
Confident with Netgear CLI/GUI interrogation & port configurationNMS portals
Fortinet or comparable platform (training available)
Multi-vendor know-how
Cisco, Allied Telesis, SD-WAN technologiesSoft skills
Clear communicator, self-sufficient, comfortable in fast-moving project teamsNice to have
Experience supporting large-scale retail roll-outs (300 +sites).
Script/automation chops (Python, Ansible) to accelerate repetitive tasks
01/06/2025
Network Engineer – Retail Telephony / SD-WAN Project Duration: 16–20 weeks (target start week commencing 23 June 2025)
We are looking for a Network Engineer to support one of our projects kicking off imminently to install new headsets in our store estate. The role required needs to cover the below:
Good Knowledge of Networks, TCP/IP, DNS, DHCP, QOS.
A good understanding of Firewalls.
Knowledge of SIP, RTP, VOIP Protocols and Telephony concepts.
Experience interrogating switches (Netgear)
Experience with Network Management Portals (Fortinet) or other, training can be provided
Comfortable working in a Network Environment that is in Mid Migration and able to understand both.
Knowledge of Cisco and Allied Telesis technologies, SDWAN etc Good Verbal & Communication skillsLocation: South Manchester (Hybrid – 2-3 days on-site, remainder remote)
Engagement: Day-rate contract; outside IR35 expected but final status TBC
Background - Our client is rolling out a cloud-hosted telephony solution headsets across 400 + sites this summer.
You’ll be the network SME who keeps every cut-over running smoothly while the in-house teams focus on a parallel SD-WAN migration from a legacy Claranet estate.
When installs are quiet you’ll support the SD-WAN project work.
What you’ll do
Provide remote Tier-3 support to field engineers installing the headset solution into sites; perform switch-port checks, packet traces and firewall rule reviews in real time.
Tune network services (TCP/IP, DNS, DHCP, QoS) to guarantee SIP/RTP voice quality.
Administer and interrogate Netgear switches plus Fortinet (or similar) management portals; document standard configs for 400+ sites
Troubleshoot across mixed environments (legacy MPLS & new SD-WAN); liaise with third-party NOCs.
Feed concise status updates into the project manager and wider delivery team; act on your own initiative when answers aren’t immediately at hand.Core Skill Detail
Networking fundamentals
Deep knowledge of Layer 2/3, TCP/IP, DNS, DHCP, QoSVoice & telephonySIP, RTP, VoIP concepts; real-time traffic optimisationSecurity
Working understanding of firewalls and rule-set troubleshootingSwitching
Confident with Netgear CLI/GUI interrogation & port configurationNMS portals
Fortinet or comparable platform (training available)
Multi-vendor know-how
Cisco, Allied Telesis, SD-WAN technologiesSoft skills
Clear communicator, self-sufficient, comfortable in fast-moving project teamsNice to have
Experience supporting large-scale retail roll-outs (300 +sites).
Script/automation chops (Python, Ansible) to accelerate repetitive tasks
Please note this position requires IR35 compliance (inside IR35) JOB SUMMARY: As Network SME you will have extensive experience supporting and designing LAN and WAN networks both on and offshore and have expertise in the migration of business services whilst maintaining business continuity. Previous experience of working in a project design and engineering role is a plus. ESSENTIAL FUNCTIONS AND RESPONSIBILITIES Contribute to the solution design and migration of site's local and wide area networks. Take the charge in translating project requirements into standard or custom technical solutions in Wired and wireless LAN, wide area network, 3rd party connectivity, integration with cloud environment. Aid in the design, build and run of Cloud Networking and Security services such as edge and core Firewalls, proxies and load balancers, direct network connections with public cloud providers such as express route, direct connect, etc. Proactively seek opportunities to drive efficiency, automation, and cost reduction by automating manual and repetitive tasks, and actively document requirements for evolution of existing standard solutions, patterns, and features. Develop features and codified networking artefacts for platform improvements leveraging automation and infrastructure and network policies as code REQUIRED QUALIFICATIONS CCIE certified Extensive experience working as a Network Engineer in large enterprise oil and gas setting within a global operations team Experienced in Automation System Security and Industrial Systems Security Experience in Process Control Networks, Process Integration Networks Expertise in cloud provider network and network security products Solid understanding of core network protocols and services (TCP/UDP/IP, DNS, NAT, DHCP), IPV6 a plus Ability to analyze network behavior, performance and application issues using standard tools at a packet level Cisco data center switching and routing using recent platforms ie, Nexus, ASR, CSR etc. Cisco and Aruba wireless technologies, 802.11 ac, ax knowledge a plus Aruba ClearPass Cisco ACI and SDN architecture including APIC Routing protocols including BGP, OSPF, GRE, IPSEC, VRF, MPLS etc. SDWAN products from Versa networks, Fortinet, or Juniper Firewall product knowledge, palo alto, Fortinet, Cisco FTD, ASAs Network function virtualization, MANO, KVM or VMware hypervisor, HCI platforms such as Cisco Hyperflex Knowledge in zScaler private access, and Internet access (ZPA, ZIA) Experience with Cellular networks LTE/4G, Zigbee, LoraWan, GeoSat/MeoSat technologies for use at industrial facilities (rigs, platforms, ships, refineries) Knowledge for the Purdue model and working knowledge of airgap architecture in traditional PCN/PIN topologies. Experience in defining network topologies via infrastructure as code using tools such as Terraform and Ansible. Experienced at installing and configuring network devices (Switches, Routers, Firewalls, etc.) Excellent communication and influencing skills. Ability to analyze complex technical issues and provide options to overcome challenges. Good working knowledge of ITIL principles/ITIL certification Hold CCNA, CCNP Network/Cloud certification
22/01/2022
Contractor
Please note this position requires IR35 compliance (inside IR35) JOB SUMMARY: As Network SME you will have extensive experience supporting and designing LAN and WAN networks both on and offshore and have expertise in the migration of business services whilst maintaining business continuity. Previous experience of working in a project design and engineering role is a plus. ESSENTIAL FUNCTIONS AND RESPONSIBILITIES Contribute to the solution design and migration of site's local and wide area networks. Take the charge in translating project requirements into standard or custom technical solutions in Wired and wireless LAN, wide area network, 3rd party connectivity, integration with cloud environment. Aid in the design, build and run of Cloud Networking and Security services such as edge and core Firewalls, proxies and load balancers, direct network connections with public cloud providers such as express route, direct connect, etc. Proactively seek opportunities to drive efficiency, automation, and cost reduction by automating manual and repetitive tasks, and actively document requirements for evolution of existing standard solutions, patterns, and features. Develop features and codified networking artefacts for platform improvements leveraging automation and infrastructure and network policies as code REQUIRED QUALIFICATIONS CCIE certified Extensive experience working as a Network Engineer in large enterprise oil and gas setting within a global operations team Experienced in Automation System Security and Industrial Systems Security Experience in Process Control Networks, Process Integration Networks Expertise in cloud provider network and network security products Solid understanding of core network protocols and services (TCP/UDP/IP, DNS, NAT, DHCP), IPV6 a plus Ability to analyze network behavior, performance and application issues using standard tools at a packet level Cisco data center switching and routing using recent platforms ie, Nexus, ASR, CSR etc. Cisco and Aruba wireless technologies, 802.11 ac, ax knowledge a plus Aruba ClearPass Cisco ACI and SDN architecture including APIC Routing protocols including BGP, OSPF, GRE, IPSEC, VRF, MPLS etc. SDWAN products from Versa networks, Fortinet, or Juniper Firewall product knowledge, palo alto, Fortinet, Cisco FTD, ASAs Network function virtualization, MANO, KVM or VMware hypervisor, HCI platforms such as Cisco Hyperflex Knowledge in zScaler private access, and Internet access (ZPA, ZIA) Experience with Cellular networks LTE/4G, Zigbee, LoraWan, GeoSat/MeoSat technologies for use at industrial facilities (rigs, platforms, ships, refineries) Knowledge for the Purdue model and working knowledge of airgap architecture in traditional PCN/PIN topologies. Experience in defining network topologies via infrastructure as code using tools such as Terraform and Ansible. Experienced at installing and configuring network devices (Switches, Routers, Firewalls, etc.) Excellent communication and influencing skills. Ability to analyze complex technical issues and provide options to overcome challenges. Good working knowledge of ITIL principles/ITIL certification Hold CCNA, CCNP Network/Cloud certification
Job Title: Lead Architect – Networking & Security
Reports to: Director of Solution Architecture
Location: Travel throughout the UK with occasional overnights
Overall Job Purpose:
Acquired by the iomart Group in 2015, SystemsUp has a longstanding history and highly credible reputation for providing independent consultancy and project services. We have strong partnerships with key vendors such as Microsoft, Barracuda, Amazon & Google as well as access to a range of services through our partners and parent company. We believe our team experience, independence and therefore our strengths lie in our roots as a pure consultancy organisation working and using extensively modern and productive technologies across both public and commercial sectors in the United Kingdom.
We’re extremely excited to have this opening, as we continue to invest in our partnership with Barracuda, a leading cloud security vendor.
Building out our network and security practice, Barracuda awareness is important for development of the successful candidate, but broader network and security knowledge is crucial to support customer engagements and transformation.
The role of the Lead Architect is a senior technical position within SystemsUp and requires “thought leadership” and strategic direction within technologies related to all forms of modern workplace technologies and solutions for end users.
Core technology experience must include a number of industry standard vendors in a network/security capacity e.g. Barracuda, Cisco, Fortinet, CheckPoint, Palo Alto, Microsoft (Azure), AWS, VMware, HP, Aruba, SD-WAN technologies, SIEM, etc.
The Lead Architect will support customer meetings resulting in appropriate pre-sales materials such as statements of work or proposals, plus creation and updating of other documentation as required such as web site and marketing materials, data sheets, blogs, etc.
The Lead Architect will also need to…
Assist in developing go to market strategies for networking and security technology solutions
High level and low-level design skills, requirement gathering, delivering customer workshops, presentations and roadmaps
Implementation, deployment, configuration and migration skills (this will be a hands-on role)
These key areas will develop and grow based on vendor direction and customer requirement.
Flexibility and agility must be a part of their personal skills as well as a proper understanding of correct process and adherence to quality principles, offering any advice and recommendations on improvements that could be made.
Main Duties of the Job:
Perform presales activity as required in support of the Solution Architecture and Sales teams both within SystemsUp but also in support of the wider group (iomart and Cristie Data) such as attending meetings, writing or contributing to proposals, statements of work, RFP responses, business case materials, cost models.
Understanding of a customer’s business requirements and aspirations in relation to technology; architecting the design and development of technology solutions for customers and acting as a trusted advisor to our customers.
Build excellent documentation, designs, implementation and migration plans using the input of others as required and spelling out clearly our desire to deliver customer outcomes.
Run workshops and meetings in a professional and engaging manner with the achievement of mutually desired solution outcomes.
Development and delivery of technology specific presentations, white board sessions and workshops to both large audience seminars and project workshop environments.
Technical ownership of the solution design and implementation, including supporting technologies.
Maintain a broad understanding of vendor technologies products, an understanding of their architectural principles and, where appropriate, high level solution design skills and pre-sales accreditations in these products.
Maintain an in-depth knowledge of industry standards relevant to the role, project delivery methodologies and relevant vendor technology roadmaps.
To adhere to all company policies and processes as communicated by line management in order to maintain corporate ISO accreditation levels.
To obtain and maintain technical accreditations as required by management in accordance with the guidelines provided by manufacturers and software vendors.
At all times to provide a courteous service and professional approach to customers and to the delivery of allocated tasks as required.
To perform any other duties which, from time to time may be allocated by your Team Leader/Manager
Skills, Knowledge and Experience:
Excellent technical and commercial understanding in creation of technology solutions and outcomes for customers.
Experience in architecting and being involved with implementing a broad range of technology solutions related to the following; modern workplace, hybrid/public/private cloud, networking, storage, security.
Experience in owning and contributing to proposals, statements of work, RFP responses, business cases, cost models and leading the review process.
Excellent communication skills, both oral and written, enabling the presentation of complex technical solutions.
Minimum of 3-5 years’ relevant experience in a customer facing consultancy focussed organisation.
Minimum of 5-8 years’ experience as an SME in one or more relevant technology areas
Experience in working with both architectural principles and project delivery methodologies including fundamentals of project management.
Ability to mentor other technical staff to help develop their skills and role.
Team player but with the ability to work unaided.
Professional appearance and manners.
Positive and constructive attitude in all work-related matters.
Strong time management skills and ability to work at pace within a fast-moving environment.
Suitable pre-sales level accreditations in supporting technologies is also beneficial.
29/02/2020
Full time
Job Title: Lead Architect – Networking & Security
Reports to: Director of Solution Architecture
Location: Travel throughout the UK with occasional overnights
Overall Job Purpose:
Acquired by the iomart Group in 2015, SystemsUp has a longstanding history and highly credible reputation for providing independent consultancy and project services. We have strong partnerships with key vendors such as Microsoft, Barracuda, Amazon & Google as well as access to a range of services through our partners and parent company. We believe our team experience, independence and therefore our strengths lie in our roots as a pure consultancy organisation working and using extensively modern and productive technologies across both public and commercial sectors in the United Kingdom.
We’re extremely excited to have this opening, as we continue to invest in our partnership with Barracuda, a leading cloud security vendor.
Building out our network and security practice, Barracuda awareness is important for development of the successful candidate, but broader network and security knowledge is crucial to support customer engagements and transformation.
The role of the Lead Architect is a senior technical position within SystemsUp and requires “thought leadership” and strategic direction within technologies related to all forms of modern workplace technologies and solutions for end users.
Core technology experience must include a number of industry standard vendors in a network/security capacity e.g. Barracuda, Cisco, Fortinet, CheckPoint, Palo Alto, Microsoft (Azure), AWS, VMware, HP, Aruba, SD-WAN technologies, SIEM, etc.
The Lead Architect will support customer meetings resulting in appropriate pre-sales materials such as statements of work or proposals, plus creation and updating of other documentation as required such as web site and marketing materials, data sheets, blogs, etc.
The Lead Architect will also need to…
Assist in developing go to market strategies for networking and security technology solutions
High level and low-level design skills, requirement gathering, delivering customer workshops, presentations and roadmaps
Implementation, deployment, configuration and migration skills (this will be a hands-on role)
These key areas will develop and grow based on vendor direction and customer requirement.
Flexibility and agility must be a part of their personal skills as well as a proper understanding of correct process and adherence to quality principles, offering any advice and recommendations on improvements that could be made.
Main Duties of the Job:
Perform presales activity as required in support of the Solution Architecture and Sales teams both within SystemsUp but also in support of the wider group (iomart and Cristie Data) such as attending meetings, writing or contributing to proposals, statements of work, RFP responses, business case materials, cost models.
Understanding of a customer’s business requirements and aspirations in relation to technology; architecting the design and development of technology solutions for customers and acting as a trusted advisor to our customers.
Build excellent documentation, designs, implementation and migration plans using the input of others as required and spelling out clearly our desire to deliver customer outcomes.
Run workshops and meetings in a professional and engaging manner with the achievement of mutually desired solution outcomes.
Development and delivery of technology specific presentations, white board sessions and workshops to both large audience seminars and project workshop environments.
Technical ownership of the solution design and implementation, including supporting technologies.
Maintain a broad understanding of vendor technologies products, an understanding of their architectural principles and, where appropriate, high level solution design skills and pre-sales accreditations in these products.
Maintain an in-depth knowledge of industry standards relevant to the role, project delivery methodologies and relevant vendor technology roadmaps.
To adhere to all company policies and processes as communicated by line management in order to maintain corporate ISO accreditation levels.
To obtain and maintain technical accreditations as required by management in accordance with the guidelines provided by manufacturers and software vendors.
At all times to provide a courteous service and professional approach to customers and to the delivery of allocated tasks as required.
To perform any other duties which, from time to time may be allocated by your Team Leader/Manager
Skills, Knowledge and Experience:
Excellent technical and commercial understanding in creation of technology solutions and outcomes for customers.
Experience in architecting and being involved with implementing a broad range of technology solutions related to the following; modern workplace, hybrid/public/private cloud, networking, storage, security.
Experience in owning and contributing to proposals, statements of work, RFP responses, business cases, cost models and leading the review process.
Excellent communication skills, both oral and written, enabling the presentation of complex technical solutions.
Minimum of 3-5 years’ relevant experience in a customer facing consultancy focussed organisation.
Minimum of 5-8 years’ experience as an SME in one or more relevant technology areas
Experience in working with both architectural principles and project delivery methodologies including fundamentals of project management.
Ability to mentor other technical staff to help develop their skills and role.
Team player but with the ability to work unaided.
Professional appearance and manners.
Positive and constructive attitude in all work-related matters.
Strong time management skills and ability to work at pace within a fast-moving environment.
Suitable pre-sales level accreditations in supporting technologies is also beneficial.
